03-11-202005-11-2020

Security daily (04-11-2020)

Ransomware attacks grow more menacing during the pandemic, creating headaches in health sector

Steve Giles was having dinner in the Los Angeles area on Friday, Feb. 5, 2016, when he received an ominous phone call. The computer networks of Hollywood Presbyterian Medical Center, the 434-bed hospital where Giles was the chief information officer, were seizing up. “This created panic, to some degree, within the nursing and physician staff,” Giles told the California Senate weeks later. “We immediately reverted to downtime procedures.” His staff ended up running to an ATM across the street, twice, to withdraw $17,000 to convert to cryptocurrency and pay off the hackers who were holding his hospital’s computers hostage. There were no reports of patient harm from the incident. Giles’ team averted a serious medical crisis, but the attack exposed vulnerabilities in one of the first high-profile ransomware incidents at a hospital. Nearly five years on, numerous health care organizations have endured their own version of that jarring experience. “I equate Hollywood Presbyterian to […] The post Ransomware attacks grow more menacing during the pandemic, creating headaches in health sector appeared first on CyberScoop. (CyberScoop)

Nothing is sacred: Ransomware attack hit toy maker Mattel's systems this summer

Count the company behind Barbie dolls and Fisher-Price toys among the ever-growing list of digital extortion victims. A ransomware attack struck toy manufacturer Mattel this summer, the company said in a financial disclosure to the U.S. Securities and Exchange Commission. In a year when ransomware has threatened elections, hospitals and schools, the attack on Mattel demonstrates once more that the attack method is leaving no kind of target untouched. In its Nov. 3 quarterly report, Mattel said it emerged from the attack largely unscathed, however. It discovered the intrusion on July 28, when a number of its IT systems became encrypted. “Promptly upon detection of the attack, Mattel began enacting its response protocols and taking a series of measures to stop the attack and restore impacted systems,” the company said. “Mattel contained the attack and, although some business functions were temporarily impacted, Mattel restored its operations.” The report continued: “A forensic investigation of the […] The post Nothing is sacred: Ransomware attack hit toy maker Mattel's systems this summer appeared first on CyberScoop. (CyberScoop)

After a quiet election night on the cyber front, officials preach vigilance as results come in

After years of preparation from security professionals and election officials, Election Day went down without any significant publicly reported cybersecurity incidents, U.S. officials told reporters Tuesday. Federal and state officials were on watch for any unusual digital activity, but all in all, it was just “another Tuesday on the internet,” as a senior Cybersecurity and Infrastructure Security Agency official put it. In other words, there were no reports of targeted cyberattacks from U.S. adversaries. Security experts chalked the smooth operation up to vigilance on the part of officials across the election ecosystem, and the resiliency built into the voting process. Voting machines and electronic pollbooks suffered glitches in certain counties in Georgia and Ohio, but they were technical errors that are to be expected and not caused by anything malicious. Election administrators quickly reverted to paper backups and the voting process carried on. Officials at the Election Infrastructure Information Sharing and Analysis […] The post After a quiet election night on the cyber front, officials preach vigilance as results come in appeared first on CyberScoop. (CyberScoop)

Another Chrome zero-day, this time on Android – check your version!

Another week, another Chrome zero-day, this time on your phone. (Naked Security)

Kim Dotcom Can Be Extradited To US But Can Also Appeal

(News ≈ Packet Storm)

Toy Maker Mattel Discloses Ransomware Attack

(News ≈ Packet Storm)

23,600 Hacked Databases Have Leaked From A Defunct Site

(News ≈ Packet Storm)

No Election Winner Yet: How To Spot Misinformation While You Wait For Results

(News ≈ Packet Storm)

Mysterious APT Leaves Curious ‘KilllSomeOne’ Clue

APT cloaks identity using script-kiddie messages and advanced deployment and targeting techniques. (Threatpost)

GrowDiaries Exposes Emails, Passwords of 1.4M Cannabis Growers

Cannabis journaling platform GrowDiaries exposed more than 3.4 million user records online, many from countries where pot is illegal. (Threatpost)

Google Forms Abused to Phish AT&T Credentials

More than 200 Google Forms impersonate top brands - including Microsoft OneDrive, Office 365, and Wells Fargo - to steal victims' credentials. (Threatpost)

Toymaker Mattel Hit by Ransomware Attack

Financial disclosure filings describe a ransomware attack that delivered a weak punch. (Threatpost)

VMware Issues Updated Fix For Critical ESXi Flaw

A previous fix for the critical remote code execution bug was "incomplete," according to VMware. (Threatpost)

Code42 Incydr Series: Why Most Companies Can’t Stop Departing Employee Data Theft

According to Code42’s Data Exposure Report, 63% of employees say they brought data with them from their previous employer to their current employer. (Threatpost)

03-11-202005-11-2020

/security-daily/ 05-11-2020 23:44:23